Quoting Don [EMAIL PROTECTED]:
# ./kinit
kinit(v5): Configuration file does not specify default realm when
parsing name
I don't understand the error message, I do have my config
file at /etc/krb5.conf and it does define my default realm.
Would anyone know why this error/message is
Hi Avery,
I'm working with kerberos and AIX, but since I'm a foreign
person (an evil being, at least according of USA's crypto software
laws :-) ) and I didn't find krb5 1.2.3 at cryptopublish.org
site I'm still using version 1.2.2, so I don't know if I'm able
to fully help you.
When I start
Hi David
No offense and nothing personal, and I would be sorry to see this
thread degenerate into an MS vs. non-MS slanging match. I like
MS-products and I have been a Microsoft programmer through and
through. But one thing I don't like about MS, is the way they distort
an agreed upon standard,
Hey Turbo, Thanks for the reply. As it turns out the problem was coming
from extra white space that I had along the left margin of my krb5.conf
file. So this time you can remove the blame from Redhat and place it on me.
All is well now though, thanks again.
-Original Message-
From:
MS did not really distort an agreed upon standard, by which I take it
you mean RFC1510. RFC1510 has provisions that allow implementors to come
up with, require and use their own authorization data extensions. MS
did; and they're just not sharing the details.
It's their right, really, though
Sam Hartman [EMAIL PROTECTED] wrote:
Hi. I'm trying to be helpful and answering your question. I speak
for myself not for the MIT Kerberos team.
hot == hot ice [EMAIL PROTECTED] writes:
[snip]
hot - If this
hot is allowed are there any credits or acknowledgements that I hot
need to
In article [EMAIL PROTECTED],
[EMAIL PROTECTED] (hot ice) wrote:
I would be sorry to see this
thread degenerate into an MS vs. non-MS slanging match
Way too late for that :-)
meeroh
--
Hire me: http://meeroh.org/hire.html
On Fri, Jan 18, 2002 at 02:31:16PM +, Mark H. Wood wrote:
hot == hot ice [EMAIL PROTECTED] writes:
[snip]
hot - If this
hot is allowed are there any credits or acknowledgements that I hot
need to provide while shipping my product?
Unclear. I don't pretend to understand all
Actually they are sharing the details, but only for review/
analysis.
The Microsoft PAC specification is available at Microsoft's
web site, but subject to a rather prohibitive license.
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=20597
Unfortunately, at least from my interpretation
yes the US does have a twisted definition of munitions or rather how
an algorithim and a bomb can be considered the same :(
Well I'm not experiencing any hanging of the command it starts right
up and I authinicate just fine. The problem is:
emu:/usr/krb5/sbin ./kadmin
Authenticating as
Could someone please suggest where I could find more information similar to
a programmers guide to Kerberos V5? I am moderately confortable with GSSAPI
but would like information to the underlying Kerberos mechanism.
Thanks,
jonw
jwackley == Jonathan Wackley [EMAIL PROTECTED] writes:
jwackley Could someone please suggest the environment and configure
jwackley options to build MIT Kerberos V5 rel 1.2.2 (or 1.2.3) hpux
jwackley PA2.0W (LP64) dynamic libraries. Tried the native hp
jwackley compiler, and gcc 2.95 with no
Speaking in very general terms, there were some cleanliness issues, but I
would hope that the make check step would pick up any real issues. One
build had a problem with alloca, another build had a problem with unresolved
symbols. If you suggest the configure options, I will give you build
Standard Disclaimer: Speaking for myself, not necessarily my employer.
Below:
-Original Message-
From: Wyllys Ingersoll [mailto:[EMAIL PROTECTED]]
Sent: Thursday, January 17, 2002 12:48 PM
To: David Lawler Christiansen (NT)
Cc: [EMAIL PROTECTED]
Subject: Re: Kerberos on the web
jwackley == Jonathan Wackley [EMAIL PROTECTED] writes:
jwackley Speaking in very general terms, there were some cleanliness
jwackley issues, but I would hope that the make check step would pick
jwackley up any real issues.
Well, I know make check will likely show some errors in util/db2 and
Will try (possibly both) and let you know...
-Original Message-
From: Tom Yu [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 18, 2002 2:02 PM
To: Jonathan Wackley
Cc: [EMAIL PROTECTED]
Subject: Re: Compiling hpux PA2.0W (LP64) dynamic libraries
Hm. I have never seen alloca problems
Title: Message
See below:
-Original Message-From: Zafar Baig
[mailto:[EMAIL PROTECTED]] Sent: Thursday, January 17, 2002
1:45 PMTo: David Lawler Christiansen (NT)Cc:
[EMAIL PROTECTED]Subject: RE: Kerberos on the
web
Resending my message to highly Mr.
Quoth [EMAIL PROTECTED] (Jonathan Wackley):
| Configured and built MIT Kerberos V5 release 1.2.2 distribution with no
| obvious issues. Execute code to perform dlopen of libkrb5.so and the
| following error message (from my program) is shown at exit:
|
| /sbin/loader: Error: Unresolved symbol in
Same situation without --enable-share.
Thanks,
jonw
-Original Message-
From: Jonathan Wackley [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 18, 2002 2:15 PM
To: Tom Yu
Cc: [EMAIL PROTECTED]
Subject: RE: Compiling hpux PA2.0W (LP64) dynamic libraries
Will try (possibly both) and
David Lawler Christiansen (NT) wrote:
Standard Disclaimer: Speaking for myself, not necessarily my employer.
Ditto :)
[...]
It's true that you can't get the token information out of the ticket if
the KDC cannot generate a PAC (presumeably because it is not an MS KDC).
However, this
Hi Donn,
Thanks for your response. Due to the separation of responsibilities it is
very important to have no compile time dependency. Introducing the argument
-rpath at link time is not a general enough solution. Do you feel
that placing the Kerberos libraries is a system standard
Title: unsubscribe
unsubscribe
In regard to: RE: Compiling hpux PA2.0W (LP64) dynamic libraries, Jonathan...:
Here is the salient output from the build. Please keep in mind that it
is only representative, i.e. I have tried a permutation of flags of
-D_POSIX_SOURCE and -D_HPUX_SOURCE through the --with-ccopts configure
jwackley == Jonathan Wackley [EMAIL PROTECTED] writes:
jwackley Here is the salient output from the build. Please keep in
jwackley mind that it is only representative, i.e. I have tried a
jwackley permutation of flags of -D_POSIX_SOURCE and -D_HPUX_SOURCE
jwackley through the --with-ccopts
First point, good, it is slowly getting narrowed down.
Yes, the the generated ftpcmd.c contains calls to alloca. It is in the
bison.simple that I am using. Should I change the bison.simple or use the
+Olibcalls that someone suggested?
Thanks,
jonw
-Original Message-
From: Tom Yu
In regard to: RE: Compiling hpux PA2.0W (LP64) dynamic libraries, Jonathan...:
Yes, the the generated ftpcmd.c contains calls to alloca. It is in the
bison.simple that I am using. Should I change the bison.simple or use the
+Olibcalls that someone suggested?
You don't need to change the
Looking at cc -Ae is on by default. Don't need this option. Unfortunately,
this option does not turn on PA2.0 (LP64) builds. Configured build with
yacc instead of bison. Compile problem in krb4 area. this is shown at end
of e-mail. Reconfigured with --without-krb4 to work around problem,
Also,
Test 3: btree: small key, big data pairs
page size 512
test3: btree page size 512: failed
Thanks,
jonw
-Original Message-
From: Jonathan Wackley [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 18, 2002 7:00 PM
To: [EMAIL PROTECTED]
Subject: RE: Compiling hpux PA2.0W
Rickard Borgmäster [EMAIL PROTECTED] writes:
[...]
Although, the documentation is rather complex and the one thing I'm
not able to find out right now is wether I can make my BSD boxes
part of the Win2000-domain realm, of if I need to set up a separate
UNIX realm with cross-authentication to
[leaving the disclaimers intact] :-)
Standard Disclaimer: Speaking for myself, not necessarily
my employer.
Ditto :)
[...]
I disagree with this point - by making it much more
cumbersome to administer and removing it from the Windows
Domain, the incentive to use anything other
On Fri, 18 Jan 2002, David Lawler Christiansen (NT) wrote:
It's true that you can't get the token information out of the ticket if
the KDC cannot generate a PAC (presumeably because it is not an MS KDC).
However, this doesn't render your server useless. What it does do is
deprive you of
31 matches
Mail list logo